Tagged: VMware Tools

October 2, 2025

VMware Zero-Day (CVE-2025-41244) Exploited by Chinese APT UNC5174 Since October 2024

Broadcom has patched a critical privilege escalation vulnerability in VMware Aria Operations and VMware Tools, which had been actively exploited as a zero-day since October 2024. The flaw, tracked as CVE-2025-41244, was not initially...

Vulnerability

July 25, 2025

Flaws in VMware Tools VGAuth Allow Local SYSTEM Privilege Escalation on Windows Guest Machines

Security researcher Sergey Bliznyuk of Positive Technologies has published a detailed analysis of critical vulnerabilities in the VGAuth component of VMware Tools, which enable a low-privileged local user to gain full SYSTEM-level access on...

Tagged: VMware Tools

VMware Zero-Day (CVE-2025-41244) Exploited by Chinese APT UNC5174 Since October 2024

Flaws in VMware Tools VGAuth Allow Local SYSTEM Privilege Escalation on Windows Guest Machines

Recent Posts